CVE-2021-35525
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-35525
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-35525.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-35525
- Related
- Published
- 2021-06-28T18:15:08Z
- Modified
- 2025-01-08T10:46:32.465174Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenated email addresses. NOTE: the PostSRSd maintainer acknowledges "theoretically, this error should never occur ... I'm not sure if there's a reliable way to trigger this condition by an external attacker, but it is a security bug in PostSRSd nevertheless."
- References
Affected packages
Debian:11 / postsrsd
Package
- Name
- postsrsd
- Purl
- pkg:deb/debian/postsrsd?arch=source
Debian:12 / postsrsd
Package
- Name
- postsrsd
- Purl
- pkg:deb/debian/postsrsd?arch=source
Debian:13 / postsrsd
Package
- Name
- postsrsd
- Purl
- pkg:deb/debian/postsrsd?arch=source